两个已经生效的入级符号用来支持船东对网络风险的管理：SW Registry专注于软件变更管理，并能满足IACS UR E22的要求。SYS COM是一个可以自主选择的入级符号，旨在防止通过远程访问进行恶意网络攻击，覆盖船舶和岸上的数据交换。BV是最早为这一关键风险提供入级符号的船级社。最后，BV的NI 641（基于自主船舶目标的建议指南），为船舶基本系统的最低功能要求以及提高系统可靠性提供了指导。另有入级符号CyberSecure X (X = 1, 2, 3)即将推出。
NEW NOTATIONS ADDRESS CYBER SECURITY CHALLENGES
Cyber security is a major concern for the marine industry, with its rapidly growing fleet of connected ships. Critical technology has demonstrated significant cyber security weaknesses. In addition, an increase in cyber incidents combined with a lack of insurance coverage for losses make the safeguarding of that information an imperative.
The good news is that operational technology infrastructure and connected equipment can be protected: through control of physical access to hardware, protection against harm from networks, data or code injection, and awareness training to avoid intentional malpractice by operators.
Bureau Veritas has developed a holistic approach to support its clients. In line with the cyber security framework developed by the US National Institute of Standards and Technology, the three main action-based steps are: identify to protect; detect to mitigate; and recover to improve.
Two class notations support owners’ management of cyber risk. SW Registry focuses on software change management, and enables recognition of compliance with IACS UR E22. SYS-COM is a voluntary notation aimed at preventing malicious cyber attacks through remote access, covering the exchange of data between ship and shore. Bureau Veritas is currently the only classification society to offer a notation for this key risk. Finally, NI 641- Guidelines for Autonomous Shipping goal-based recommendations is setting a minimum level of functionality of essential systems and guidance for improving system reliability.
‘At Bureau Veritas, we welcome innovation, and are proud to support our clients with their new ideas, using the expertise we have acquired over decades of testing, inspection and certification, to make their ideas reality.’